turbo-pipelines
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill documents installation procedures for official Goldsky CLI tools using piped shell execution. The URLs (goldsky.com and install-turbo.goldsky.com) belong to the skill's author (goldsky-io), and the use of 'curl | sh' is a standard distribution method for these utilities.
- [SAFE]: All credentials, API keys, and connection strings within the provided YAML templates and documentation are represented by descriptive placeholders (e.g., 'MY_POSTGRES_SECRET', 'your-token') to prevent the exposure of sensitive data.
- [SAFE]: Analysis of the markdown and template files revealed no evidence of prompt injection, data exfiltration, obfuscation, or persistence mechanisms.
Audit Metadata